This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/ZwVEwgiwITzzAorGck8VXul9oFU.roa File: ZwVEwgiwITzzAorGck8VXul9oFU.roa (raw, json) Hash identifier: qDVShcnTFlPrk8WY/vVUFbSS/IUCjtruta++I3zUCp4= Subject key identifier: 67:05:44:C2:08:B0:21:3C:F3:02:8A:C6:72:4F:15:5E:E9:7D:A0:55 Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c Certificate serial: 019B7DCB2431BD7314C17A2EA643E2F9E69F Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/ZwVEwgiwITzzAorGck8VXul9oFU.roa Signing time: Fri 02 Jan 2026 08:20:23 +0000 ROA not before: Fri 02 Jan 2026 08:20:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5418 IP address blocks: 217.170.15.0/24 maxlen: 24 2a02:10:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.mft rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:24:31:bd:73:14:c1:7a:2e:a6:43:e2:f9:e6:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c Validity Not Before: Jan 2 08:20:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=670544c208b0213cf3028ac6724f155ee97da055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9c:4d:51:b3:ca:49:a2:00:05:31:7a:c1:b8: c5:11:cd:3b:bf:63:44:55:f9:aa:22:22:1d:82:71: 94:44:9e:50:2a:33:68:85:da:6f:c5:90:22:c0:1f: 66:d1:d1:e6:fb:d9:d3:79:51:3a:03:8e:f8:fb:b5: cc:9a:09:78:35:78:a3:39:51:2e:93:24:7b:a1:6f: 2d:8e:51:d0:9c:e9:d9:19:0c:dd:7e:8b:7d:0e:0b: 2c:2c:19:81:7c:d2:4d:cf:82:48:74:01:e4:40:53: fe:fb:31:05:ba:6b:b8:a6:74:fd:d9:12:fa:91:80: 7f:50:3a:e5:f7:48:81:c2:54:78:8b:47:62:6d:c5: d8:76:1a:73:8a:18:73:f7:e1:4d:f2:a5:4b:64:55: ad:59:db:6e:1f:15:25:4b:c5:8d:09:18:a9:af:9a: 53:1b:3c:ad:7b:c0:af:38:46:40:ee:88:fb:b2:9c: f9:95:bc:fc:aa:db:e3:3a:6d:28:30:c2:5b:30:47: 49:50:c4:f4:88:44:c8:cd:3c:ea:02:dc:36:b4:f2: c7:4f:96:8a:36:8a:13:60:25:50:2d:b9:00:0c:ac: 02:52:d5:99:7b:54:69:ad:e6:af:0e:09:fd:28:c1: bf:c3:85:9d:09:e9:2e:85:4e:5b:df:b4:62:67:5c: 5c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:05:44:C2:08:B0:21:3C:F3:02:8A:C6:72:4F:15:5E:E9:7D:A0:55 X509v3 Authority Key Identifier: keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/ZwVEwgiwITzzAorGck8VXul9oFU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.170.15.0/24 IPv6: 2a02:10:100::/48 Signature Algorithm: sha256WithRSAEncryption 75:84:80:10:2e:43:d5:4d:ae:bf:f4:f2:60:81:8c:78:c9:b8: b5:10:4c:74:67:11:12:3f:92:df:fb:89:ac:76:43:f1:f8:6f: 7b:79:3a:91:a6:92:9a:30:bb:c5:db:3e:c9:9a:44:7a:67:72: 03:a3:cb:10:8c:0a:15:69:72:c9:a5:39:1a:08:8d:c3:c8:06: c4:7b:14:ef:8d:31:a8:eb:b6:93:6f:c5:7b:bb:51:95:c7:b9: e0:7e:6b:ae:66:6d:42:54:43:1b:b0:d3:77:ae:d2:bc:71:5b: 63:85:ce:e3:f5:71:d6:f1:57:93:f7:2f:31:80:03:a0:03:b8: 28:76:80:22:36:d7:b0:6e:5f:31:cc:c6:b7:74:55:fe:eb:68: a7:d7:3e:8a:d0:2a:6e:a0:bd:48:26:14:3a:71:75:0b:9b:9e: ad:e4:68:88:f6:6f:71:a6:19:de:d8:d3:d7:b8:c3:8d:a2:b9: d9:69:e9:fa:55:c7:73:f0:26:ac:78:99:b7:96:b5:54:48:a2: 3b:22:43:b4:2e:83:52:d3:9d:5f:6c:5e:2f:44:a1:de:6a:eb: 91:4d:53:79:1c:f2:2a:6b:ee:2c:9e:2f:d0:2f:04:83:98:de: f7:92:99:88:36:e1:9e:c3:4a:46:75:a4:fb:7e:30:8b:4c:28: 33:e2:18:b2 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9yyQxvXMUwXoupkPi+eafMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMWZlMzBmYzZiNGIwZDBmNmRiNGUxYmZiYmQ1MDE5NWRj YTU3NWMwHhcNMjYwMTAyMDgyMDIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzA1NDRjMjA4YjAyMTNjZjMwMjhhYzY3MjRmMTU1ZWU5N2RhMDU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA35xNUbPKSaIABTF6wbjFEc07v2NE VfmqIiIdgnGURJ5QKjNohdpvxZAiwB9m0dHm+9nTeVE6A474+7XMmgl4NXijOVEu kyR7oW8tjlHQnOnZGQzdfot9DgssLBmBfNJNz4JIdAHkQFP++zEFumu4pnT92RL6 kYB/UDrl90iBwlR4i0dibcXYdhpzihhz9+FN8qVLZFWtWdtuHxUlS8WNCRipr5pT Gzyte8CvOEZA7oj7spz5lbz8qtvjOm0oMMJbMEdJUMT0iETIzTzqAtw2tPLHT5aK NooTYCVQLbkADKwCUtWZe1RpreavDgn9KMG/w4WdCekuhU5b37RiZ1xc8wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGcFRMIIsCE88wKKxnJPFV7pfaBVMB8GA1UdIwQY MBaAFCAf4w/GtLDQ9ttOG/u9UBldyldcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUJfakQ4YTBzTkQyMjA0Yi03MVFHVjNLVjF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My84ZDgwZjktNDk0ZS00YWJiLTk5NTYt ZmMxMjFjODAwYjMwLzEvWndWRXdnaXdJVHp6QW9yR2NrOFZYdWw5b0ZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My84ZDgwZjktNDk0ZS00YWJiLTk5NTYtZmMxMjFjODAwYjMw LzEvSUJfakQ4YTBzTkQyMjA0Yi03MVFHVjNLVjF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQA2aoPMA8E AgACMAkDBwAqAgAQAQAwDQYJKoZIhvcNAQELBQADggEBAHWEgBAuQ9VNrr/08mCB jHjJuLUQTHRnERI/kt/7iax2Q/H4b3t5OpGmkpowu8XbPsmaRHpncgOjyxCMChVp csmlORoIjcPIBsR7FO+NMajrtpNvxXu7UZXHueB+a65mbUJUQxuw03eu0rxxW2OF zuP1cdbxV5P3LzGAA6ADuCh2gCI217BuXzHMxrd0Vf7raKfXPorQKm6gvUgmFDpx dQubnq3kaIj2b3GmGd7Y09e4w42iudlp6fpVx3PwJqx4mbeWtVRIojsiQ7Qug1LT nV9sXi9Eod5q65FNU3kc8ipr7iyeL9AvBIOY3veSmYg24Z7DSkZ1pPt+MItMKDPi GLI= -----END CERTIFICATE-----Generated at Sun Jan 25 21:06:21 2026 by rpki-client